Terms of Service

1. Acceptance

By accessing or using the SOCHQ platform ("Service") you agree to these Terms. If you are using the Service on behalf of an organization, you represent that you have authority to bind that organization. If you do not agree, do not use the Service.

2. Permitted Use

SOCHQ is a security operations platform. You may use it to monitor, detect, and respond to threats within systems you own or are explicitly authorized to monitor. You may not:

• Use the platform to conduct unauthorized scans, attacks, or reconnaissance against systems you do not own or control
• Circumvent tenant isolation or attempt to access another tenant's data
• Use scanning or active-response features against targets outside your authorized scope
• Reverse-engineer the platform, resell access, or create derivative competing services
• Upload or process content that violates applicable law

3. Account Responsibilities

You are responsible for all activity under your account. Keep credentials confidential. Notify us immediately at security@sochq.io if you suspect unauthorized access.

You are responsible for ensuring that any agents, EDR/SIEM integrations, or other data sources you connect are deployed only on systems you own or are authorized to monitor.

4. Subscriptions and Billing

Paid plans are billed in advance on a monthly or annual basis via Stripe. You may cancel at any time; cancellation takes effect at the end of the current billing period. We do not issue refunds for partial periods except where required by law.

We reserve the right to modify pricing with 30 days' notice. Continued use after the notice period constitutes acceptance of the new pricing.

5. Data Ownership

You retain ownership of all security data you ingest into the platform. We process it solely to deliver the Service. See our Privacy Policy for full data handling details.

6. Service Availability

We target 99.5% monthly uptime for paid plans. Scheduled maintenance windows will be announced 48 hours in advance where possible. We are not liable for outages caused by third-party dependencies (cloud infrastructure, AI providers, or upstream security data sources).

7. Prohibited Content and Mandatory Reporting

You must not use the platform to store, process, or transmit child sexual abuse material (CSAM) or any illegal content. If SOCHQ detects or receives a report of such content, we are required by law (including 18 U.S.C. § 2258A) to report it to the National Center for Missing and Exploited Children (NCMEC) and may report to law enforcement.

8. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, SOCHQ'S TOTAL LIABILITY FOR ANY CLAIM ARISING OUT OF OR RELATING TO THESE TERMS SHALL NOT EXCEED THE AMOUNTS PAID BY YOU IN THE 12 MONTHS PRECEDING THE CLAIM. WE ARE NOT LIABLE FOR INDIRECT, INCIDENTAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES.

The Service is a tool to assist your security team — it does not guarantee detection of all threats. You remain responsible for your own security posture.

9. Termination

Either party may terminate at any time. We may suspend or terminate your account immediately for violations of Section 2 (Permitted Use) or Section 7 (Prohibited Content). Upon termination, your data is retained for 90 days then purged, per our Privacy Policy.

10. Governing Law

These Terms are governed by the laws of the State of Delaware, without regard to conflict of law principles. Any disputes shall be resolved by binding arbitration under AAA Commercial Rules, with proceedings in English.

11. Changes

We may update these Terms with 14 days' notice via email or in-app notification. Continued use after that date constitutes acceptance.

12. Contact

Legal questions: legal@sochq.io